d13e59a5bc5db0fe263e37f3a3dd429f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d13e59a5bc5db0fe263e37f3a3dd429f_JaffaCakes118
Size

67KB
MD5

d13e59a5bc5db0fe263e37f3a3dd429f
SHA1

6e8966e0a0d807632623a8b26bc8beff93709346
SHA256

69e2e6ab0fa4c12ce8f1de6aa5e0f2a81ea735e94ad64a9ed5af6341839b07a5
SHA512

f823ff047f3c12f5eddd9e86deaf07909879d925e3ccdef70e0b1ab9bc7c9f60dc56009ec83b0ba16032eb0b3d1638d52d79171841b2139d4784b8a079e2c41e
SSDEEP

1536:ZsVF45+fiszKFpz4C+YwS+pQ1iYw/oSSUE3yHQyh9drlMjf6z3:Zsr45+yvz5ftEcORDVHke

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d13e59a5bc5db0fe263e37f3a3dd429f_JaffaCakes118

Files

d13e59a5bc5db0fe263e37f3a3dd429f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1b6b608abace3228065dd35f987f35ee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitAtomTable
DosPathToSessionPathA
FindFirstFileW
GetPriorityClass
SetConsoleCursorPosition
GetLongPathNameA
GetStdHandle
WriteProfileSectionW
LocalHandle
EscapeCommFunction
SetVDMCurrentDirectories
GetFileType
ClearCommError
SetConsoleFont
WideCharToMultiByte
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

SetUserObjectInformationW
AllowSetForegroundWindow
CreateAcceleratorTableA
LoadKeyboardLayoutW

shell32

SHEmptyRecycleBinW
StrStrA
DllUnregisterServer
SHCreateDirectoryExA
SHGetSpecialFolderPathA
SHEmptyRecycleBinW
OpenAs_RunDLL
StrRStrA

Exports

Exports

Mhfobcepkec

Sections

.text
Size: 4KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gcjee
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE